Amendments to the Claims 



1 . (currently amended) A method oLfe^transmitting secured data 
ov e r a wir el ess l i nk , the method comprising: 

utilizing a first key to encrypt e ncrypt i ng a payload accord i ng to a f i rst 
s e ssion k e y ; 

adding a header to the encrypted payload to form a data packet; 

utilizing a second key to encrypt e ncrypting the first s e ssion key; 

utilizing a third key to encrypt e ncrypting the data packet according to a 
s e cond s e ssion k e y ; 

transmitting the encrypted first s e ssion key to a wireline device , wherein 
the wireline device decrypts the encrypted first kev i-afid 

transmitting the encrypted data packet over a wireless link to a gateway A 
wherein the gateway whisk-decrypts the encrypted data packet to recreate T 
r e cr e at e s the encrypted payload and the header, and forwards the encrypted 
payload and the header to the wireline device over an open network ; and 

utilizing the wireline device and the first key to decrypt the encrypted 
payload . 

2. (currently amended) The method of claim 1 , wherein the first 
s e ss i on key comprises uses-a symmetric key. 

3. (currently amended) The method of claim 1 , further comprising: 
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r e c ei v i ng th e e ncrypt e d first s e ss i on k e y and the encrypted pay l oad at the 
w i r el in e d e v i c e ; 

d e crypt i ng th e e ncrypt e d f i rst s e ss i on k e y; and 

d e crypt i ng th e e ncrypt e d pay l oad us i ng th e d e crypt e d f i rst s e ss i on k e y. 

transmitting the encrypted first key to the wireline device, wherein the 
wireline device decrypts the encrypted first key using a private key associated 
with the second key. 

4. (currently amended) The method of claim 1 , wherein the third 
s e cond s e ss i on key comprises y ses-a symmetric session key. 

5. (canceled). 

6. (currently amended) A device for transmitting secured data over a 
wireless link to a gat e way providing acc e ss to a wid e ar ea n e twork; , the device 
comprising: 

an encryption engine which generates a first s e ssion key, encrypts a 
payload according to the a-first session key, adds a header to the encrypted 
payload to form a data packet, encrypts the first s e ss i on key according to a 
second key, [Ml and encrypts the data packet according to a third s e cond s e ss i on 
key; and 

a wireless transceiver coupled to the encryption engine , the wireless 
transceiver transmitting wh i ch transmits t he encrypted first s e ss i on key to a 
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server and transmitting transm i ts the encrypted data packet over the a-wireless 
link to a gateway , wherein the gateway which-decrypts the encrypted data packet 
to recreate ^ r e cr e at e s the encrypted payload and the header, and forwards the 
encrypted payload and the header to the a-server over an open network; 

wherein the server decrypts the encrypted first key and decrypts the 
encrypted payload using the decrypted first key . 

7. (canceled). 

8. (currently amended) The device of claim 6, wherein the payload 
comprises location information regarding a location of the w i r ele ss device. 

9. (currently amended) The device of claim 6, wherein the first key 
e ncrypt i on al gor i thm employs a symmetric key. 

10. (currently amended) A method for secured communication 
between a mobile device and a server on a wide area network, the method 
comprising: 

encrypting a payload at the mobile device using a first session key; 
encrypting the an un e ncrypt e d first session key at the mobile device using 
a public key ; 

transmitting the encrypted first session key to the server over a wireless 

link; 
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decrypting the encrypted first session key at the server; 
e ncrypt i ng a pay l oad at th e mob ile devic e using th e unencrypt e d first 
s e ssion k o y; 

adding a header to the encrypted pavload to form a data packet at the 
mobile device; 

encrypting the data packet according to a second session key configured 
for secured communications over the wireless link; and 

transmitting the encrypted data packet from the mobile device to a 
gateway which decrypts the encrypted data packet to recreate , r e cr e at e s the 
encrypted payload and the header, and forwards the d e crypt e d encrypted 
payload and the header to the server; 

wherein the server utilizes the decrypted first session key to decrypt the 
encrypted pavload . 

1 1 . (currently amended) The method of claim 1 0 , furth e r comprising: 

r e c e iv i ng th e e ncrypt e d data pack e t at th e gat e way; 

d e crypting th e e ncrypt e d data pack e t at th e gat e way to r e cov e r a 
d e crypt e d data pack e t compr i s i ng th e e ncrypt e d pay l oad e ncrypt e d w i th th e f i rst 
s e ssion k e y; 

forwarding the d e crypted data pack e t to th e s e rv e r ovor th e wid e ar oa 
n e twork; 

d e crypt i ng th e e ncrypt e d first sess i on k e y at th e s e rv e r us i ng a pr i vat e 
k e y; and 
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d e crypting th e e ncrypt e d pay l oad at th e s e rv e r us i ng th e d e crypt e d f i rst 
s e ss i on k e y. 

wherein the decrypting the encrypted first session key at the server further 
comprises: 

decrypting the encrypted first session key at the server using a private key 
associated with the public key. 

12-14. (canceled). 

15. (original) The method of claim 10, wherein the payload includes 
location information. 

16. (currently amended) The method of claim 10, wh e r e in th e further 
comprising: 

generating the a-first session key at the mobile device further compr i ses 
gen e rat i ng th o first s e ssion k e y based on a random number. 

17. (currently amended) The method of claim 10, wherein the 
encrypting the a-pavload at the mobile device using the first session key further 
comprises: 

encrypting the payload at the mobile device using the first session key, 
wherein the first session key employs an encryption algorithm selected from a 
group of at le ast on e of th e encryption algorithms consisting of DESX and of 
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DES. 

18-19. (canceled). 

20. (currently amended) The method of claim 1, wh e r ei n f urther 
comprising: 

implementing an encryption algorithm selected from a group of encryption 
algorithms consisting of th e first s e ssion k e y i mp le m e nts at le ast on e of th e 
e ncrypt i on a l gor i thms DESX and gfDES. 

21-24. (canceled). 

25. (previously presented) The method of claim 1, wherein the data 
packet includes location information. 

26. (currently amended) The method of claim 1. further comprising: 
utilizing a random number to generate the first key. 

4 , wh e r ei n th e s e ssion k e y is g e n e rat e d bas e d on a random numb e r. 

27. (currently amended) The device of claim 6, further comprising: 

a memory coupled to the encryption engine, wherein the memory having a 
pub li c k e y assoc i atod with a s e rv e r on th e wid e ar e a network stor e d th e r e in 
stores the second key, and wherein the encryption engine accesses the second 
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key from the memory . 



28. (canceled). 

29. (currently amended) A computer readable medium[[,]] comprising 
program instructions for performing a method comprising: 

encrypting a payload according to a first s e ss i on key; 

adding a header to the encrypted payload to form a data packet; 

encrypting the first s e ss i on key according to a second key ; 

encrypting the data packet according to a third s e cond s e ss i on key 
configured for secured communications over a wireless link; 

transmitting the encrypted first s e ss i on key to a server; and 

transmitting the encrypted data packet over the a-wireless link to a 
gateway , wherein the gateway wbisb-decrypts the encrypted data packet to 
recreate , r e cr e at e s the encrypted payload and the header, and forwards the 
encrypted payload and the header ov e r an op e n n e twork to the serve r, and 
wherein the server which-decrypts the encrypted first s e ss i on key and decrypts 
the encrypted payload using the decrypted first s e ss i on key. 

30. (currently amended) The computer readable medium of claim 29, 
wherein the first s e ss i on key comprises uses-a symmetric key. 

31 . (currently amended) The computer readable medium of claim 29, 
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wherein the method furthe r compr i s i ng comprises : 
receiving the data packet at the gateway; 

decrypting the data packet at the gateway according to the third s e cond 

forwarding the encrypted payload to the server; 

receiving the encrypted first s e ss i on key at the server; 

decrypting the encrypted first s e ss i on key using a fourth pfjvate-kev; and 

decrypting the payload according to the decrypted first s e ss i on key. 

32. (currently amended) The computer readable medium of claim 29, 
wherein the first s e ss i on key comprises y ses-a symmetric session key. 

33. (currently amended) The computer readable medium of claim 29, 
wherein the method further first s e ss i on k e y comprises: 

implementing an encryption algorithm selected from a group of at l e ast 
on e of th e encryption algorithms consisting of DESX and o fDES. 

34. (previously presented) The computer readable medium of claim 
29, wherein the data packet includes location information. 

35. (previously presented) The computer readable medium of claim 
32, wherein the symmetric session key is generated based on a random number. 



M-11702 US 
Examiner: Teslovich, T. 



-9- 



Serial No.: 09/927,928 
Group Art Unit: 2137 



